Cve 2025 0215

Cve 2025 0215. Cve 2025 Jerry Louella Information Technology Laboratory National Vulnerability DatabaseVulnerabilities At cve.org, we provide the authoritative reference method for publicly known information-security vulnerabilities and exposures

The root cause stems from insufficient input sanitization and output escaping for the parameters showdata and initiate_restore. The UpdraftPlus: WP Backup & Migration Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the showdata and initiate_restore parameters in all versions up to, and including, 1.24.12 due to insufficient input sanitization and output escaping

[B! security]

This vulnerability affects all versions of the plugin up to and including 1.24.12 This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can. Information Technology Laboratory National Vulnerability DatabaseVulnerabilities

CVE202438063 Mitigation and IPv6 Discussion by Cryptic Risk Medium. At cve.org, we provide the authoritative reference method for publicly known information-security vulnerabilities and exposures This issue arises due to insufficient input sanitization and output escaping in the showdata and initiate_restore parameters

Microsoft Security Advisory CVE202521172 and Visual Studio Remote Code Execution. Summary CVE-2025-0215 is a Reflected Cross-Site Scripting (XSS) vulnerability affecting the UpdraftPlus: WP Backup & Migration Plugin for WordPress, versions up to and including 1.24.12 Information Technology Laboratory National Vulnerability DatabaseVulnerabilities